cancel
Showing results for 
Search instead for 
Did you mean: 
cancel

ACL not working

FabioLanza89974
Beginner
Beginner

Hi,

 

I have three vlans: user, wireless, dmz. I want to prevent traffic from dmz to user and from dmz to wireless. I implemented these ACLs but it's not working. Traffic is still being allowed. Can you please let me know if I'm doing anything wrong?

ip access-list extended "dmz -> user"
deny ip 10.0.0.0 0.0.0.255 10.0.1.0 0.0.0.255 ace-priority 1
exit
ip access-list extended "dmz -> wireless"
deny ip 10.0.0.0 0.0.0.255 10.0.2.0 0.0.0.255 ace-priority 1
exit

image.pngimage.png

 

Thanks,


Fabio

1 ACCEPTED SOLUTION

Accepted Solutions

have you bind the ACL to VLAN ?

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

View solution in original post

7 REPLIES 7

Muhammad Awais Khan
Rising star
Rising star

Hi,

 

Did you apply it to interface at interface level command " Access-Group input dmz -> user  ? If so which interface you applied ?

I am not very skilled with the CLI so I did everything via the GUI. I don't think that I applied it at interface level. If you share the command with me to try out via CLI I could execute it. Thanks.

Georg Pauwen
VIP Master VIP Master
VIP Master

Hello,

 

whar device is this GUI screenshot from, which router/switch model ? Somewhere in the GUI there should be a 'Save' and/or 'Apply' button, make sure you have that checked...

I did save. Device model is Small Business Cisco SG350-10MP.

have you bind the ACL to VLAN ?

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

No, after binding it started working. Thanks.

Glad all working as expected after binding ACL to VLAN. Cheers!

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: